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SYSTEM AND METHOD FOR COMMUNICATING WITH A KEY VARIABLE 
LOADER (KVL) USING A STANDARD UNIVERSAL ASYNCHRONOUS 
RECEIVER TRANSMITTER (UART) PERIPHERAL 



TECHNICAL FIELD 
This invention relates in general to loading encryption keys to an electronic device 
and more particularly to a system and method of transferring encryption keys using a 
universal asynchronous receiver transmitter (UART) peripheral. 



BACKGROUND 

Many electronic products today include requirements that data transmitted or 
received at the device be in a "secure" format. Many public service two-way radio 
products require that communications either sent to or received from the radio be 

1 5 encrypted to ensure the accuracy and security of the voice or data exchanged during a 
communication. Since encryption has been used for many years, there are many different 
formats and methods by which data can be encrypted within these devices. 

With regard to two-way radio communications, in order to facilitate the encryption 
of data, an encryption key along with a complex algorithm is used in the radio to enable 

20 data to be encrypted or decrypted. The encryption key is transferred to encryption 
circuitry within the radio which, in part, instructs the radio on how to process the 
encrypted communications. Prior art loading techniques typically use a key loader, which 
acts as an interface to facilitate the transmission of a desired encryption key from a 
computer to the radio. More recently, more complex key loading technology has been 

25 used where a key variable loader (KVL) is used to generate encryption keys and to 
communicate with a universal crypto module (UCM) located within the radio for the 
purpose of transferring encryption keys to the UCM. All encryption key information is 
received from the KVL where it is then stored within the UCM which is a separate 
physical device. A user may load key information into the UCM through the use of either 

30 the KVL or through over-the-air transmission (OTAR) commands. For the purpose of 
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OTAR, the UCM initially communicates with the KVL to acquire key encryption keys 
(KEKs) for use with the encryption commands sent over the air from fixed network 
equipment (FNE). 

Prior art FIG. 1 shows a key loader communications system 100 that includes a 
5 KVL 101 connected to a control device 103 typically located in an encryption device (not 
shown). The KVL 101 communicates with the control device 103 via a keyfill line 105 
and device detect line 107. Data is conveyed from the KVL 101 over the keyfill line 105 
to a first general purpose input output peripheral (GPIO keyfill) 109. The GPIO captures 
data coming in from the KVL 101 or it can also transmit data in a bi-directional fashion 

10 back to the KVL. The difficulty in using the GPIO 109 is that it must sample data over 
the keyfill line 105 at a high rate. Sampling must occur at a speed that enables the GPIO 
109 to capture a complete byte of data. 

Thus, the GPIO 109 must operate at a sufficient speed to detect all bit transitions 
such that no command or control information is lost from the KVL 101. The GPIO 109 is 

1 5 connected to a KVL link layer driver 1 1 1 through a register interface. A timer peripheral 
1 13 is connected to the KVL link layer driver 1 1 1 for conveying timing information for 
data sampling over the keyfill line 105. The KVL link layer driver 1 1 1 is the controlling 
software that uses timing information from the timer peripheral 113, along with data 
sampled from the GPIO peripheral 109, to send or receive encryption key command data 

20 to a KVL 101 application. The KVL application 1 14 is the software application that 
interprets key load and key management commands so that the control device 103 
accurately interprets the data from the KVL 101. The KVL application 1 14 works to 
accurately interpret incoming data before it will accept any key from KVL 101 . A second 
GPIO peripheral (GPIO detect) 115 connects the KVL 101 through a device detect line 

25 107. The KVL detection application 117 uses the GPIO N to detect the occurrence of a 
logical low on the device detect line. This allows the control device 103 to detect the 
presence of the KVL 101 and any subsequent control commands sent from that device. It 
should be evident to those skilled in the art that any number (N) of GPIO peripherals may 
be used for accomplishing any number of interface tasks. 



CM05922J Boerger 
Express Mail No. EV 436 430 303 US 



One problem associated with this prior art architecture is that it will operate only 
with control devices that include a GPIO 109. Moreover, this architecture works 
relatively slowly when the KVL 101 utilizes the keyfill line 105. Specifically, when the 
KVL 101 is connected to the control device through GPIO 109, the processing resources 
5 required to drive and sample the keyfill line via a GPIO 109 and a timer peripheral 113 
render the encryption devices unable to accomplish any other tasks in parallel. With such 
a heavy use of processing resources, a device such as a two-way radio cannot accept an 
incoming dispatch communication since the processor is occupied interpreting encryption 
commands from KVL 101. 
10 Accordingly, the need exists for a system and method for communicating with a 

KVL enabling the KVL to communicate with a broader range of devices utilizing 
encryption keys without requiring the use of all system processing resources. 

SUMMARY OF THE INVENTION 
15 An encryption key interface incorporated within an electronic device for 

communication with a key variable loader (KVL) includes a universal asynchronous 
receiver transmitter (UART) peripheral for transmitting and receiving key commands from 
the KVL. A KVL link layer driver application is used for communicating command 
information to the UART peripheral while a KVL management application operates with 
20 the KVL driver application for interpreting key command data from the KVL. Further, a 
general purpose input output peripheral operating with a KVL detection application is also 
used when a KVL is initiating communication with the electronic device. The UART 
peripheral and GPIO peripheral communicate with the KVL over separate 
communications links to establish communication and transfer key encryption information 
25 to the KVL link layer driver application and the KVL management application. The 

invention offers a novel system and method of establishing communication with the KVL 
allowing the KVL driver to operate without a timer peripheral. This is accomplished using 
the UART peripheral which can utilize parity error information to validate communication 
with the KVL. 



CM05922J Boerger 
Express Mail No. EV 436 430 303 US 



BRIEF DESCRIPTION OF THE DRAWINGS 
The features of the present invention, which are believed to be novel, are set forth 
with particularly in the appended claims. The invention, together with further objects and 
5 advantages thereof, may best be understood by reference to the following description, 
taken in conjunction with the accompanying drawings, in the several figures of which like 
reference numerals identify like elements, and in which: 

FIG. 1 is a prior art block diagram of a control device connected to variable key 
loader using a general purpose input output peripheral (GPIO). 
10 FIG. 2 is a block diagram of a variable key loader system including a control 

device connected to a variable key loader (KVL) using a universal asynchronous input 
output peripheral (UART) according to the preferred embodiment of the invention. 

FIG. 3 is a flow chart diagram illustrating operation of the variable key loader 
connected to a control device using a UART in accordance with the system shown in 
15 FIG. 2. 



DETAILED DESCRIPTION OF THE PREFERRED EMBODIMENT 
While the specification concludes with claims defining the features of the invention 
that are regarded as novel, it is believed that the invention will be better understood from a 
20 consideration of the following description in conjunction with the drawing figures, in 
which like reference numerals are carried forward. 

Referring now to FIG. 2, the system for communicating with a key variable loader 
using a standard universal asynchronous receiving transmitter peripheral 200 includes a 
variable key loader (KVL) 201 connected to a control device 203 that is typically located 
25 within an encryption device (not shown). The KVL 201 connects to the control device 
203 using a keyfill line 205 and device detect line 207. The control device 203 includes a 
universal asynchronous receive transmit (UART) peripheral 209 which is used to receive 
read and write commands from the KVL 201 over keyfill line 205. The UART 209 works 
to perform key management activities through the KVL link layer driver 21 1 to a KVL 
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application 213 while encrypting or decrypting voice or data communications that are 
facilitated in parallel 

The KVL link layer driver 21 1 is the software that utilizes the UART peripheral 
209 resources to receive encryption commands from the KVL 201 . As discussed herein, 
5 this is accomplished using a novel protocol between the UART peripheral 209 and the 
KVL link layer driver 211 where stop bits are used in the data protocol to convey current 
ownership of the interface. Using this type of data protocol requires the control device 
203 to ignore framing errors and instead uses parity error information to calculate when 
the UART peripheral 209 will interrupt communication with the KVL 201 . The KVL link 

10 layer driver 21 1 is connected to the UART peripheral 209 though a register interface for 
receiving and transmitting these encryption commands. The KVL application 213 is the 
software application that interprets key load and key management commands so that the 
control device 203 accurately interprets the data from the KVL 201. The KVL 
application 213 is connected to the KVL link layer driver 21 1 through a send/receive 

15 interface. As will be evident to those skilled in the art, the UART peripheral 209 operates 
to facilitate encryption device deployment on the next generation control devices by 
simplifying the hardware interface to the KVL. Finally, the general purpose input output 
(GPIO) peripheral 215 uses the KVL application 217 for detecting connection of the KVL 
201 through device detect line 207. 

20 FIG. 3 illustrates a flow chart diagram 300 showing the execution of a KVL 

communications session with a control device shown in FIG. 2. According to the 
preferred method of the invention, a control device will detect a variable key loader 301 
using a KVL detection application 303. The UART operates using a set of interrupts to 
its processor so that the processor can detect a protocol event occurring on the keyfill 

25 line. This event might include such things as receiving encryption command data or 
perhaps waiting for additional data to be sent from a KVL. Thus as part of an 
initialization process, the UART peripheral determines 305 whether a break detect 
interrupt has been received. The break detect interrupt may take the form of a digital 
KVL signature from the KVL which indicates to the UART that the KVL is connected 
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and attempting to send an encryption command. Once a break detect interrupt is detected, 
this initializes the KVL link layer driver for receive operations. 

While receiving data in a receive mode, the KVL link layer driver detects 307 a 
receive data interrupt command (RX DATA INTERUPT) sent by the UART peripheral 
5 upon sampling a 9 bit data packet. When the receive data interrupt command is received, 
the KVL link layer driver ignores framing errors from the UART over the register 
interface. The KVL link layer driver uses parity error detection rather than framing error 
data to determine if the encryption command data received by the UART is corrupted. 
This is accomplished by transferring one byte of the received data into a buffer (not 

10 shown) which can be used by the KVL application (not shown) once a complete message 
is received. Thus, this step loops back 308 and repeats until an entire message is received 
from the KVL where each byte sent by the KVL will trigger the UART to generate a 
receive data interrupt command until an entire message is received. 

Following a multi-byte message sent from the KVL, the keyfill line connecting the 

1 5 KVL to the UART may include an idle pattern where the keyfill line will float to logic 
high. An idle pattern is typically at least 2 to 3 byte times of data, which remain high. 
When the KVL link layer detects this idle interrupt event it will call the KVL Application 
309 to interpret the encrypted command which is stored in the receive data buffer. This 
KVL Application 309 will formulate a reply message, place it in a transmit buffer, and 

20 inform the UART to transmit the first byte of this command. 

A second idle interrupt may also be generated 3 1 1 by the UART peripheral 
following each transmit byte so this may trigger the sending of the next byte. This step 
repeats 312 until an entire response is sent to the encryption device. However, this entire 
sequence may repeat 3 13 to accomplish the desired key management tasks such as 

25 loading, viewing and deleting key material for a control device. 

While the preferred embodiments of the invention have been illustrated and 
described, it will be clear that the invention is not so limited. Numerous modifications, 
changes, variations, substitutions and equivalents will occur to those skilled in the art 
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without departing from the spirit and scope of the present invention as defined by the 
appended claims. 
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